Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/7fuW-imLal91u2jfhuXIkILjkm4.roa
File: 7fuW-imLal91u2jfhuXIkILjkm4.roa (raw, json)
Hash identifier: l7aCjAipRGXj8JiNWmQsLZXUxSWDFHC+CNr+gHo3Www=
Subject key identifier: ED:FB:96:FA:29:8B:6A:5F:75:BB:68:DF:86:E5:C8:90:82:E3:92:6E
Certificate issuer: /CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Certificate serial: 01857195831A10D37A10B9CE3FA409283647
Authority key identifier: CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/7fuW-imLal91u2jfhuXIkILjkm4.roa
Signing time: Mon 02 Jan 2023 08:25:01 +0000
ROA not before: Mon 02 Jan 2023 08:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48728
IP address blocks: 213.178.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:83:1a:10:d3:7a:10:b9:ce:3f:a4:09:28:36:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd41cc121e0cb60a3a98dbf72ba4dbd63eebe9f
Validity
Not Before: Jan 2 08:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edfb96fa298b6a5f75bb68df86e5c89082e3926e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:62:89:79:52:0c:3b:6c:8a:d7:d4:ef:e7:f2:
b2:44:4a:10:db:a4:90:b6:84:d5:2f:02:f8:ba:c7:
77:30:fd:95:97:c1:cc:6b:6c:3e:e8:e5:70:8d:1f:
82:29:98:c2:09:f4:94:73:8e:74:1a:d6:c6:bd:f2:
05:b5:e6:b2:98:b6:3c:72:ef:65:68:09:48:d7:97:
e6:66:e7:32:8e:d1:f8:7f:74:9b:d8:57:92:da:c9:
6f:bb:c9:8e:19:59:30:ab:47:23:8c:b3:cd:de:41:
1c:40:49:2e:0c:32:7b:e4:12:9a:ae:1c:6a:7d:d8:
ea:84:79:25:bf:a3:65:55:4c:39:61:f1:92:4f:80:
64:67:9d:8a:75:d4:6f:cb:7c:22:5e:68:3f:ea:81:
8b:bd:63:30:3a:37:c7:8a:30:4e:44:88:78:0e:ba:
3d:3c:a5:d9:01:a5:28:03:e1:38:6f:c8:0e:76:91:
aa:06:99:0e:40:be:47:f1:5c:9b:a9:1f:62:ce:1a:
a4:8b:11:d4:71:95:5f:0c:8b:01:33:ea:84:bb:ed:
eb:24:3a:c3:f8:4a:a3:48:ce:96:3d:0e:5c:c5:9d:
80:24:de:d2:a9:1e:65:99:a3:9b:21:f6:07:e2:4f:
ac:7c:4f:13:ee:70:0b:2a:1b:02:78:c3:0a:f2:7e:
02:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FB:96:FA:29:8B:6A:5F:75:BB:68:DF:86:E5:C8:90:82:E3:92:6E
X509v3 Authority Key Identifier:
keyid:CB:D4:1C:C1:21:E0:CB:60:A3:A9:8D:BF:72:BA:4D:BD:63:EE:BE:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9QcwSHgy2CjqY2_crpNvWPuvp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/7fuW-imLal91u2jfhuXIkILjkm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/7eb4e8-bcb1-49ef-b944-53a5af765343/1/y9QcwSHgy2CjqY2_crpNvWPuvp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.178.136.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:de:9d:0d:69:53:85:b5:9b:a3:98:25:cb:c6:80:8d:58:6c:
2c:b5:a9:d2:4f:d8:d4:2e:e3:f5:a9:58:80:48:f9:65:35:4d:
81:f0:ae:59:03:f0:03:25:63:64:07:61:04:87:ff:92:04:27:
a8:b9:06:ce:b2:5a:4a:df:43:6c:3a:58:b5:c6:73:28:24:fd:
71:bb:b6:57:de:36:7b:b5:cc:be:c8:e1:40:c7:6c:e4:7b:0d:
4f:9f:ad:98:0b:23:49:f0:d4:80:a8:84:fc:be:7c:a2:27:26:
c0:4c:a1:11:68:3f:4e:0b:82:84:2f:f2:1a:fd:ae:f4:92:03:
35:7d:7d:c4:a4:cd:76:64:81:39:b3:89:1d:31:10:58:bd:e2:
d0:40:9b:4d:cd:69:ed:f3:ae:fb:e6:bf:8a:95:a8:ad:19:a9:
2e:18:29:d3:aa:f5:ce:ee:49:6c:7c:c0:ff:9f:3b:43:9f:57:
90:d2:2f:10:e8:ab:2c:12:7e:3c:a8:2e:13:89:4a:25:71:33:
45:69:c9:52:f3:17:84:bf:00:4c:38:de:36:93:ed:d5:12:fd:
2e:f1:7d:c5:a6:6d:5b:54:ba:e8:51:10:cd:da:b2:9c:38:5d:
8e:b9:98:86:53:e0:85:8e:2f:2c:ac:67:05:49:a6:0d:9f:49:
76:24:8d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:28 2024 by rpki-client on console-fra.rpki-client.org